Skip to content

{ Category Archives } ILM 2007

OpenLDAP Provisioning

After getting the OpenLDAP XMA working on FIM I hoped it would be possible to provision to it using FIM codeless sync. Unfortunately the conclusion I have come to is No, it isn’t.

2010 08 27 Carol FIM 2010
MIIS 2003
OpenLDAP Comments (0)

Provisioning BPOS powershell commands as CS Objects

Here’s something else I’ve been developing, which I think has interesting potential. Essentially it’s an XMA which is used to provision powershell “command” objects. These objects contain the name of the cmdlet and the list of arguments, and the Export step is actually running the command.

2010 06 25 Carol Cloud
FIM 2010
powershell Comments (0)

Phase One Joins and Data Matching

I’ve just posted a new Greatest Hits article on the ILM forum on the subject of how ILM (or the FIM Sync Service) can be used to clean up the mess of existing accounts, before you can actually get  on to the more interesting tasks of provisioning and updating. With the way FIM codeless sync works, [...]

2010 06 03 Carol FIM 2010
MIIS 2003 Comments (6)

ConnectionChangeTime

This got me out of a pickle today. A slip-up in a join rule caused hundreds of bad joins to be made. There were far too many to un-do by hand, but then I figured out I could add a few lines to the Provisioning Sub of the MVExtension to remove all the joins made [...]

2010 02 25 Carol MIIS 2003 Comments (0)

Account Deprovisioning Scenarios

I just posted this article in the Greatest Hits series of the ILM Technet forum. It describes some of the methods and considerations around disabling and deleting users accounts with ILM.

2010 01 26 Carol MIIS 2003
Uncategorized Comments (0)

Group Management Comparison

Following on from my last post about the overlaps between FIM and Exchange 2010 I wanted to clarify for myself the group management capabilities in FIM, Exchange 2010 and ILM. Warning: I will have to revisit this post – as I haven’t yet installed Exchange 2010 in a production environment the Exchange comments are based [...]

2009 12 31 Carol Exchange 2010
FIM 2010
Groups Comments (0)

Managing Exchange 2000/2003/2007 with ILM 2007

I have just posted this article in the Greatest Hits series on the ILM Technet forum. http://social.technet.microsoft.com/Forums/en-US/identitylifecyclemanager/thread/f8ad045d-7252-4cd1-a189-d704a8f99129 The article covers various management tasks you can acheive with the standard AD MA, including provisioning and updating of users, mailboxes, contacts and distribution groups. There are quite a few code samples as well.

2009 11 08 Carol Exchange 2003
Exchange 2007 Comments (0)

Creating user home directories – Windows version

I last blogged about provisioning home directories such a long time ago that I talked about Netware. I also used a SQL table alongside to keep track of a status field as I was doing some end-of-life management – zipping up the folder and stowing it in an archive location. But we don’t need to [...]

2009 09 21 Carol AD Comments (0)

ExternalEmailAddress is mandatory on MailUser

I just got this error while attempting to provision Exchange 2007 users with ILM 2007 FP1: Event Type:    Error Event Source:    MIIServer Event Category:    Server Event ID:    6801 Date:        15.09.2009 Time:        10:14:02 User:        N/A Computer:    ILMSERVER Description: The extensible extension returned an unsupported error in MIIS. The stack trace is: “Microsoft.MetadirectoryServices.ExtensionException: **** [...]

2009 09 15 Carol Exchange 2007 Comments (1)

Adding Exchange 2007 mailboxes to existing users

A while back I proposed  a powershell XMA approach to the problem of adding Exchange 2007 mailboxes to existing AD users. This was because my old method of adding an Exchange 2003 mailbox by populating a couple of extra attributes did not seem to work with Exchange 2007. However, in  a recent thread on the [...]

2009 04 05 Carol Exchange 2007 Comments (0)